Okta auth integration not working

[z0mbix]

Describe the issue
Bookstack is redirecting to a custom Okta auth server instead if the org auth server.

On login, I get redirected to https://xxxx.okta.com/oauth2/default/v1/authorize but this is the default custom auth server and only available when you have the "API Access Management" additional paid Okta feature.

Because of this Okta returns a 400 error with this page:

Steps To Reproduce
Follow the doc: https://www.bookstackapp.com/docs/admin/third-party-auth/#okta

Create Okta app as described in the above doc, then set the following env vars:

OKTA_APP_SECRET=xxx
OKTA_APP_ID=xxx
OKTA_BASE_URL=https://xxxx.okta.com

Expected behavior
I would expect bookstack to redirect to the standard auth server:

https://xxxx.okta.com/oauth2/v1/authorize

instead of:

https://xxxx.okta.com/oauth2/default/v1/authorize

Your Configuration (please complete the following information):

• Exact BookStack Version (Found in settings): 0.31.4
• PHP Version: 7.4.14
• Hosting Method (Nginx/Apache/Docker): Docker (solidnerd/bookstack)

Additional context
https://support.okta.com/help/s/article/400-error-on-authentication-to-Okta-using-OIDC?language=en_US

I have looked at the socialite code and AFACT, should default to using the org auth server:

https://github.com/SocialiteProviders/Okta/blob/master/Provider.php

They even mention about using a custom auth server in the docs:

https://socialiteproviders.com/Okta/#custom-auth-server

[ssddanbrown]

Hi @z0mbix,
Sorry you're running into issues here.

Looks like this was something that was addressed upstream: SocialiteProviders/Providers#615
As far as I can tell, we're using the patched version in the latest version of BookStack. Looking through our releases, this should be fixed from BookStack v0.31.5.

[z0mbix]

Excellent, I’ve upgraded and it’s working as expected now. Thanks!